Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
File:                     e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json)
Hash identifier:          J8tRkFYr54Dwz/vYuAy13xjp1rddpKSnOaCNLTfU0Ig=
Subject key identifier:   5D:1C:CA:2E:40:69:2D:48:FB:E9:7D:A1:56:73:8B:0B:2B:A2:37:D1
Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
Certificate issuer:       /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Certificate serial:       019D3865A3678042518E332E2B601D2CB776
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
Manifest number:          084B
Signing time:             Sun 29 Mar 2026 07:01:18 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:18 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:18 +0000
Files and hashes:         1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: u31fgk5K6maUYoTyyZkzeVSW1v8gBKI53ppLf80/lJI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:a3:67:80:42:51:8e:33:2e:2b:60:1d:2c:b7:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
        Validity
            Not Before: Mar 29 07:01:18 2026 GMT
            Not After : Mar 30 07:01:18 2026 GMT
        Subject: CN=5d1cca2e40692d48fbe97da156738b0b2ba237d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:df:e4:ba:7b:5a:f4:b5:e0:db:ee:fe:c9:2b:
                    68:48:8f:2a:4b:10:82:4c:99:52:a7:e9:be:70:85:
                    89:76:36:69:53:9c:05:d5:06:23:93:b0:f2:9f:b9:
                    3d:0f:4e:0c:65:e2:27:5a:c1:94:0b:f0:05:ea:5f:
                    cc:75:a4:6c:4c:c3:24:4e:a7:81:fa:8b:16:40:66:
                    16:d7:fb:c1:31:fb:59:ce:f8:c7:81:88:d3:db:c0:
                    a3:f8:02:75:b3:b5:5e:f1:13:b6:2c:dd:ea:d1:ff:
                    c3:ef:12:09:37:a1:ca:96:0b:f4:a5:10:ba:f8:5b:
                    35:86:35:88:a5:b2:f8:ff:7e:9a:dd:fb:cb:89:7a:
                    22:ee:d7:8b:d4:16:ae:e0:8f:69:46:8c:a7:cf:cb:
                    dd:49:f8:b1:3d:d7:fb:93:09:05:85:44:71:12:69:
                    6c:10:a2:0f:ba:0d:7b:20:f1:ab:fb:5c:13:37:db:
                    39:11:b6:dc:38:83:7c:c7:83:c8:ce:8c:cc:3e:40:
                    62:31:fa:14:8a:62:5e:7d:15:8a:67:a3:22:01:9f:
                    94:ab:b8:d0:9b:ad:18:0d:ba:e3:2f:3e:06:59:40:
                    88:f4:13:d7:8c:27:7a:c1:06:fd:23:1b:33:86:f2:
                    9d:12:da:43:0f:74:82:85:f2:ef:b8:d3:23:07:e0:
                    c7:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:1C:CA:2E:40:69:2D:48:FB:E9:7D:A1:56:73:8B:0B:2B:A2:37:D1
            X509v3 Authority Key Identifier:
                keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:9a:4b:fa:f9:ee:72:8e:96:6b:40:3e:2e:62:99:d2:87:76:
         a7:1a:88:f5:92:b3:d8:a8:f9:f1:0b:5e:35:15:3d:6a:c5:f3:
         f0:0b:53:1a:ea:65:a6:00:ea:2e:5f:6b:58:37:7a:1f:87:72:
         78:50:3e:cc:e1:65:c2:56:00:d2:3a:8a:23:a3:ac:91:42:21:
         da:5d:ee:6d:79:dd:b0:b1:63:fb:13:fd:7b:89:17:81:e5:2a:
         43:95:26:50:8d:d2:c4:46:95:f1:58:05:86:e8:50:64:3a:b0:
         30:49:b2:bb:39:01:10:1a:29:e8:2f:ab:d9:6a:b4:1c:ba:d7:
         58:56:a7:e7:9e:40:be:02:cb:7e:b5:82:62:49:a9:2b:e5:4d:
         c7:79:49:78:64:35:d3:6d:5e:e1:cf:2a:51:b3:b9:7a:b9:e5:
         35:5e:86:bd:32:71:e5:69:95:84:fd:41:58:45:b6:14:52:b3:
         43:27:b9:53:ee:ca:2a:ae:04:20:d5:74:ff:3d:58:12:17:7f:
         1c:30:9f:24:1b:2f:84:80:33:ca:9e:d7:65:ce:bd:c1:05:90:
         cb:17:af:8c:b7:c9:d7:02:d7:d7:56:f6:e9:c6:7d:84:e0:b1:
         88:b6:7f:08:e4:77:16:5b:bd:8e:a9:1b:34:16:62:c1:bb:df:
         3c:9f:02:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZaNngEJRjjMuK2AdLLd2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiYzdiZTUyMWQxN2E2YTU5MmNjNjFmNzkxNGMyNWYxNjk1
N2NjOWMwHhcNMjYwMzI5MDcwMTE4WhcNMjYwMzMwMDcwMTE4WjAzMTEwLwYDVQQD
Eyg1ZDFjY2EyZTQwNjkyZDQ4ZmJlOTdkYTE1NjczOGIwYjJiYTIzN2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzt/kunta9LXg2+7+yStoSI8qSxCC
TJlSp+m+cIWJdjZpU5wF1QYjk7Dyn7k9D04MZeInWsGUC/AF6l/MdaRsTMMkTqeB
+osWQGYW1/vBMftZzvjHgYjT28Cj+AJ1s7Ve8RO2LN3q0f/D7xIJN6HKlgv0pRC6
+Fs1hjWIpbL4/36a3fvLiXoi7teL1Bau4I9pRoynz8vdSfixPdf7kwkFhURxEmls
EKIPug17IPGr+1wTN9s5EbbcOIN8x4PIzozMPkBiMfoUimJefRWKZ6MiAZ+Uq7jQ
m60YDbrjLz4GWUCI9BPXjCd6wQb9IxszhvKdEtpDD3SChfLvuNMjB+DHGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0cyi5AaS1I++l9oVZziwsrojfRMB8GA1UdIwQY
MBaAFHvHvlIdF6alksxh95FMJfFpV8ycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzIt
MTA1ZDgwMDIxNDlkLzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzItMTA1ZDgwMDIxNDlk
LzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkppL+vnu
co6Wa0A+LmKZ0od2pxqI9ZKz2Kj58QteNRU9asXz8AtTGuplpgDqLl9rWDd6H4dy
eFA+zOFlwlYA0jqKI6OskUIh2l3ubXndsLFj+xP9e4kXgeUqQ5UmUI3SxEaV8VgF
huhQZDqwMEmyuzkBEBop6C+r2Wq0HLrXWFan555AvgLLfrWCYkmpK+VNx3lJeGQ1
021e4c8qUbO5ernlNV6GvTJx5WmVhP1BWEW2FFKzQye5U+7KKq4EINV0/z1YEhd/
HDCfJBsvhIAzyp7XZc69wQWQyxevjLfJ1wLX11b26cZ9hOCxiLZ/COR3Flu9jqkb
NBZiwbvfPJ8CqQ==
-----END CERTIFICATE-----